Getting Data In

Community Activity

Performance data collecting and analytics I have a tool which has its performance data in its database. i am getting the output of it in a flat file and then i... by kiranmudunuru New Member in Getting Data In 12-20-2013 0 1	0	1
CSV comma handling with additional commas Hello fellow Splunkers! I am having some problems with the format of my data and indexing it correctly in Splunk. L... by himynamesdave Contributor in Getting Data In 12-20-2013 1 6	1	6
log4j truncating the log entry We are noticing some of the log entries which are getting truncated. we are using the log4j sourcetype. actual log ... by bohrasaurabh Communicator in Getting Data In 12-19-2013 0 6	0	6
What is the default port on Splunk Universal Forwarder for Deployment Server to send data All configurations will be pushed by Deployment Server to Forwarder running on linux box. What is the default port o... by ajaysamantbms Explorer in Getting Data In 12-19-2013 0 1	0	1
FIELD_NAMES for Missing Headers of CSV I have a comma separated csv file with missing headers. From the props.conf.spec below it has the configuration setti... by emccaslin Path Finder in Getting Data In 12-19-2013 0 5	0	5
why isn't the inputs.conf script running? Hi, I have just tried adding my first scripted input to splunk (a forwarder), but I am not getting the output in my s... by brettcave Builder in Getting Data In 12-19-2013 1 3	1	3
Ignore duplicate events while indexing for circular log Hi, I have installed a splunk server in one system and one universal forwarder in another system. I am monitoring a c... by sanjibdhar Engager in Getting Data In 12-19-2013 0 3	0	3
Searching JSON data Hi, I'm trying to search some JSON data I've imported. Its of the format below. { "_id" : { "ip" : “192.1”68.1.1, "... by danwollwich New Member in Getting Data In 12-19-2013 0 1	0	1
Best practice on false positives What do you regards as the best practice to filter false positives from all views. Currently I add all false positiv... by FRoth Contributor in Getting Data In 12-19-2013 0 3	0	3
Extract date from a varying source name Hi Guys, My log files has events with the time stamp on it, just the time not the date but luckily the source name h... by luv Explorer in Getting Data In 12-18-2013 0 4	0	4
IIS log file data duplication - "Checksum for seekptr didn't match, will re-read entire file" I have a base install of 1 indexer and a few UFs. Both the indexer and UFs are version 6.0, build 182037 (UFs are Win... by mParticle Explorer in Getting Data In 12-18-2013 2 9	2	9
Receiving data via Splunk Forwarder, I want to forward it as syslog The original data is NOT syslog, and it's coming via universal forwarder, but I would like to forward it from my Splu... by Dimitri_McKay Splunk Employee in Getting Data In 12-18-2013 0 7	0	7
DBConnect input error: No output.format defined for stanza Hello, I have been using the DBConnect app for splunk for a few weeks, indexing just fine. The problem came up last w... by pembleton Path Finder in Getting Data In 12-18-2013 0 3	0	3
workload synthesizer / generator Does Splunk have the capability to generate an artificial workload to feed as input to the indexer(s)? This would be ... by tim_snider Explorer in Getting Data In 12-18-2013 0 3	0	3
Active Directory APP - no Failed Logon Data Hi, i need some help with the Active Directory APP installation because i cannot get any Failed Logon Data within the... by davidbaier New Member in Getting Data In 12-18-2013 0 1	0	1
Default setting for splunk log retention Hi! I see that splunk manages its logs with log.cfg However, not all the logs are listed in this configuration file... by yuwtennis Communicator in Getting Data In 12-18-2013 0 2	0	2
How to change sourcetype name? When i execute a schedule report (summary index) on Splunk, the sourcetype name will be default as "stash". How can ... by lsmkelvin New Member in Getting Data In 12-17-2013 0 4	0	4
Filter _internal events that get forwarded My company has a lot of small, independent offices that have a handful of machines in each locations. The problem is... by belka Path Finder in Getting Data In 12-17-2013 0 1	0	1
Splunk Duplicating IIS Log data All, I've recently started forwarding IIS log data to Splunk, and there is at least one file that keeps sending dupl... by bruceclarke Contributor in Getting Data In 12-17-2013 0 1	0	1
Can I set a limit on max input size in each index? Hi, I know set a limit on maximum input size per a day in each license pool. Is there any way to set the limit in ea... by keinoda Explorer in Getting Data In 12-17-2013 0 3	0	3
Parallel data monitor/transmission - inputs.conf precedence Splunk: Indexer <- series of tubes -> Forwarder App: fwdtosplunk/default/inputs.conf [monitor:///path1/] [monitor... by rgaleone1 Path Finder in Getting Data In 12-17-2013 0 1	0	1
Time format in DB query result I am using splunk DB connect to pull out some data to create a dashboard. But having difficulty in getting the time f... by anoopambli Communicator in Getting Data In 12-17-2013 0 5	0	5
Create new Key-Value-Pair out of a Value Hey together, I've got a problem with extracting multiple key-value-pairs. At the moment my input looks like this: ... by Dreads94 Explorer in Getting Data In 12-17-2013 0 2	0	2
splunk indexes state Hi, Is there a query to get the data found in this view? http://yoursplunkserver:8000/manager/launcher/data/indexes... by lpolo Motivator in Getting Data In 12-17-2013 0 2	0	2
Search sourcetypes by forwarders I need to collect list of sourcetypes for each forwarder using search query. i can get forwarders list from metics.lo... by johnchamp Explorer in Getting Data In 12-16-2013 0 5	0	5